Accepting request 1147439 from home:13ilya:branches:server:http

- Updated to 1.25.4 * https://nginx.org/en/CHANGES * Fixed segmentation fault might occur in a worker process while processing a specially crafted QUIC session (CVE-2024-24989, CVE-2024-24990). * Fixed connections with pending AIO operations might be closed prematurely during graceful shutdown of old worker processes. * Fixed socket leak alerts no longer logged when fast shutdown was requested after graceful shutdown of old worker processes. * Fixed socket descriptor error, a socket leak, or a segmentation fault in a worker process might occur if AIO was used in a subrequest. * Fixed segmentation fault might occur in a worker process if SSL proxying was used along with the "image_filter" directive and errors with code 415 were redirected with the "error_page" directive. OBS-URL: https://build.opensuse.org/request/show/1147439 OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=248
2024-02-18 15:28:52 +00:00 · 2024-02-18 15:28:52 +00:00 · 604e6d898a
commit 604e6d898a
parent 4a71d02af7
6 changed files with 39 additions and 19 deletions
--- a/nginx-1.25.3.tar.gz
+++ b/nginx-1.25.3.tar.gz
@ -1,3 +0,0 @@
 version https://git-lfs.github.com/spec/v1
 oid sha256:64c5b975ca287939e828303fa857d22f142b251f17808dfe41733512d9cded86
 size 1216580
--- a/nginx-1.25.3.tar.gz.asc
+++ b/nginx-1.25.3.tar.gz.asc
@ -1,14 +0,0 @@
 -----BEGIN PGP SIGNATURE-----
 iQHEBAABCAAuFiEEE8gqY7YDV2FW4wpOoOqYG2aw2WcFAmU35fsQHGsucGF2bG92
 QGY1LmNvbQAKCRCg6pgbZrDZZyOTDACePUL30TGajWOq4xtLh36Bm1OAgi21GWpq
 uM4g4xtt7laNC74Wcyst4BykhEu+NvOclTsbgYKiocyQy3qEPYoru86i0bs2AzXy
 IdT6QwHcl8nU5DcmTRm/h28R1LhM/+SZvDfVqw2QL5w2I8uM2mQs5mFOb8fn3TED
 gdalFfLoFahIfQGNeRzW1dAEjEA/wm06CkoLNBZPmGklVmppzpXODEl8qyN+4+pK
 wVPw5AsP6c55nN86DYMn+F6a5/zhgQO4GlacHPyv8Xi2yEN7Q8r1Dy68mRP+KFRg
 XqxCZVqMswYwcsrogcEwcVWWhW610IOytJKNA1Fx4ZyPiA/qZPJkzhEGUsSm7hgf
 lQ6BbdRcGm7hbe9glXtuQEtGTZuBBA52ToSJ9JLPDAeuLH3HzubS2hhj1JjdJdTq
 IfXA2s7fQBk+sGjQr07oXilRJ+3aaCoja8dSak8r5ihDqXWcu5f6fg5KK9o/j0A5
 vGi9MtfHdknQRdQCjwceDrcCqblT4yg=
 =g79P
 -----END PGP SIGNATURE-----
--- a/nginx-1.25.4.tar.gz
+++ b/nginx-1.25.4.tar.gz
@ -0,0 +1,3 @@
 version https://git-lfs.github.com/spec/v1
 oid sha256:760729901acbaa517996e681ee6ea259032985e37c2768beef80df3a877deed9
 size 1236273
--- a/nginx-1.25.4.tar.gz.asc
+++ b/nginx-1.25.4.tar.gz.asc
@ -0,0 +1,17 @@
 -----BEGIN PGP SIGNATURE-----
 iQJHBAABCAAxFiEE1nhs4wPZqQIpmNxsyEZNVJr3XAoFAmXM5KsTHHMua2FuZGF1
 cm92QGY1LmNvbQAKCRDIRk1UmvdcChqWD/wL9/6xDdVgXuXieIQAiFnFwGZMbwpe
 ym6VkfEF523aNjGV5t02vL+1nRoxPqXyD4Sxps5/T/4xcWTVrp9pCNWqXovE/qtk
 h976pBhFP8KZwF9PDL4y0M1J5dZkUzU5pSgcIdss6TUvC1/QoSrVZQ1jZ/LkU5wC
 fAVbgT0h8bFvaN8jpUqOYCwb2S64SCnVhbO6KWbI1BRNP5NDamHSg0/Y/yVrtikx
 P5GR5afMqsh3Nudd629v8gdp0D85ZPtnsrA93DJqfyBXlOtG+w8+OqahzOFlmgOW
 ZMgYUsRwF6orIx2ififnkerBI5ujfPO1Oxs9ncp+M0ChmEMYgJdB+OZQduc9qIyZ
 KlAVHtsZmCXysO9lAr6XDUj2Y3IDA6z6Xjfl52KZYIHu6XikKpeMLAeYEp5FJLHg
 MGePn54ZSVHSkcGJNFoQpLxDqgeecac30YLB2M8VK+wFt0SQFBHcAGOG0q9VnlUV
 rJky6/3gfjQ9CmHz3aMU/faVzz7N1UumBMHuQD8YjevuBWpUyr3fkVAsFgsExsjZ
 tepDdYb51qjIrV54qyj4MwaAcbJ38/fxx0PRBYDkDw991HbgBBbiBdQZrB6k9e6q
 h41AcFPkBZSlcn67dPXnPSHWhT1DZRvaYDufia4zRqon5eo/S4+ril5TAeNGBpQ2
 j1EvHzIm6EfTqA==
 =LzM5
 -----END PGP SIGNATURE-----
--- a/nginx.changes
+++ b/nginx.changes
@ -1,3 +1,20 @@
 -------------------------------------------------------------------
 Sun Feb 18 15:22:34 UTC 2024 - Илья Индиго <13ilya@gmail.com>
 - Updated to 1.25.4
  * https://nginx.org/en/CHANGES
  * Fixed segmentation fault might occur in a worker process while
    processing a specially crafted QUIC session (CVE-2024-24989, CVE-2024-24990).
  * Fixed connections with pending AIO operations might be closed
    prematurely during graceful shutdown of old worker processes.
  * Fixed socket leak alerts no longer logged when fast shutdown was
    requested after graceful shutdown of old worker processes.
  * Fixed socket descriptor error, a socket leak, or a segmentation fault
    in a worker process might occur if AIO was used in a subrequest.
  * Fixed segmentation fault might occur in a worker process if SSL
    proxying was used along with the "image_filter" directive and errors
    with code 415 were redirected with the "error_page" directive.
 -------------------------------------------------------------------
 Thu Oct 26 13:49:33 UTC 2023 - Илья Индиго <ilya@ilya.cf>
--- a/nginx.spec
+++ b/nginx.spec
@ -1,7 +1,7 @@
 #
 # spec file for package nginx
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -23,7 +23,7 @@
 %bcond_with    ngx_google_perftools
 #
 Name:           nginx
-Version:        1.25.3
+Version:        1.25.4
 Release:        0
 Summary:        A HTTP server and IMAP/POP3 proxy server
 License:        BSD-2-Clause